Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/0keZcmuKDYfsLY4VYqmH5RSf50o.roa
File: 0keZcmuKDYfsLY4VYqmH5RSf50o.roa (raw, json)
Hash identifier: g30JNhHCIfzd8rtJfO2a+LWRrKfHGE0547wy43tqL8U=
Subject key identifier: D2:47:99:72:6B:8A:0D:87:EC:2D:8E:15:62:A9:87:E5:14:9F:E7:4A
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E5D
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/0keZcmuKDYfsLY4VYqmH5RSf50o.roa
Signing time: Wed 29 Sep 2021 02:40:17 +0000
ROA not before: Wed 29 Sep 2021 02:40:17 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17709
IP address blocks: 210.203.48.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3677 (0xe5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:40:17 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D24799726B8A0D87EC2D8E1562A987E5149FE74A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f7:51:6e:a0:bf:b3:8b:78:5c:8b:47:c8:f7:
1e:90:ef:d4:b4:56:b3:89:b1:42:db:da:7c:fd:39:
07:0a:13:47:51:a7:83:15:85:f0:59:14:89:9f:40:
56:5e:9a:d6:2c:f3:ee:ae:f7:0f:80:3b:ca:96:db:
14:07:7e:09:44:18:72:c5:9d:d9:d6:cc:8c:f3:b1:
be:3f:9a:48:5d:c3:fb:83:14:2e:22:a8:20:0a:04:
d0:2f:c6:7b:db:1a:4a:f9:57:27:b4:9f:e3:29:43:
b8:36:d1:4f:d1:84:24:1a:87:f2:8b:a1:f1:d0:9a:
4a:e9:3e:0d:ca:d0:75:bf:d9:7a:d6:56:7a:ed:25:
a9:84:38:b1:b7:53:a0:e7:2c:a1:bf:06:78:08:1f:
6e:a3:d4:b4:7e:5e:a1:a6:d3:6a:e0:58:fe:98:f0:
1e:7c:61:8f:18:0c:21:aa:3c:5c:d2:a7:01:1c:db:
9f:1a:a3:85:3c:26:0a:bf:f0:c9:dd:76:44:03:9c:
e5:41:91:29:7d:3f:e7:9a:e9:8c:ef:b4:cc:99:a7:
a4:f9:44:7c:a6:23:0c:05:1f:3f:ef:f0:2f:3d:f7:
77:60:9c:92:87:1b:22:e9:62:e7:60:29:bb:bc:0a:
9b:23:53:1a:95:71:49:14:d1:d6:d6:38:e6:4d:ed:
cb:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:47:99:72:6B:8A:0D:87:EC:2D:8E:15:62:A9:87:E5:14:9F:E7:4A
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/0keZcmuKDYfsLY4VYqmH5RSf50o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.203.48.0/20
Signature Algorithm: sha256WithRSAEncryption
24:50:19:dd:89:f2:ae:ac:62:42:ef:28:3e:66:77:41:8b:17:
51:41:f9:5c:c9:a6:55:9f:26:30:69:41:da:c7:ca:24:a4:3c:
c7:76:83:08:75:6c:b7:76:0a:b8:7a:da:08:f5:0a:f9:ca:80:
fa:56:bf:e3:b2:79:09:38:42:3d:f2:cb:55:0d:19:67:fa:c6:
d8:22:7a:a6:4f:a6:c4:5e:c1:ad:2e:d0:d2:00:5e:46:7d:b3:
1f:1b:56:30:12:6f:ed:89:7d:76:d5:08:2d:43:e6:b7:75:96:
ac:60:0d:4b:cc:87:04:e2:22:58:f1:64:2e:93:13:1b:52:d6:
3c:b6:3c:4e:9c:4c:7a:01:c1:e5:6d:83:d4:a7:fa:05:5b:f7:
68:9d:80:65:6b:15:5b:51:b9:d0:66:c8:1b:8c:03:94:d7:6e:
25:16:32:7e:2b:de:e6:d1:17:cf:5b:fb:25:c8:4c:fb:73:ac:
9b:6e:90:11:39:b7:3f:3c:c3:57:0e:00:17:2c:fa:91:88:eb:
d2:39:e9:81:a3:0e:cd:46:1b:0d:90:be:47:df:2b:82:78:11:
f0:0d:55:24:9d:19:32:56:fa:b9:c0:67:7f:8f:5a:25:84:60:
81:2b:58:9d:9a:97:46:c9:7f:d3:2a:e5:3f:5d:43:98:18:10:
0d:83:6f:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org